Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to trigger memory corruption and possibly execute arbitrary code via unknown attack vectors related to JBIG2, a different vulnerability than CVE-2009-0193 and CVE-2009-1061.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Adobe
  • Acrobat
  • Acrobat Reader
  • Reader
Redhat
  • Rhel Extras

Configuration 1 [-]

OR cpe:2.3:a:adobe:acrobat:*:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:*:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.1:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.1:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.2:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.2:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.3:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.3:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.4:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.4:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.5:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.5:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.6:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.6:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.7:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.7:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.8:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.8:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.9:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.1:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.1:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.1.1:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.0:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.0:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.1:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.1:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.2:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.2:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.2:security_update:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.3:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.3:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.4:*:professional:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:8.1.4:*:standard:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:4.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:4.0.5a:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:4.0.5c:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:4.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.6:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.0.11:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.0.9:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:8.1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:8.1.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:reader:8.1.4:*:*:*:*:*:*:*
Package CPE Advisory Released Date
Extras for RHEL 3
acroread-0:8.1.4-1 cpe:/a:redhat:rhel_extras:3 RHSA-2009:0376 2009-03-25T00:00:00Z
Extras for RHEL 4
acroread-0:8.1.4-1.el4 cpe:/a:redhat:rhel_extras:4 RHSA-2009:0376 2009-03-25T00:00:00Z
Supplementary for Red Hat Enterprise Linux 5
acroread-0:8.1.4-1.el5 cpe:/a:redhat:rhel_extras:5 RHSA-2009:0376 2009-03-25T00:00:00Z
References
Link Providers
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html cve-icon cve-icon
http://secunia.com/advisories/34392 cve-icon cve-icon
http://secunia.com/advisories/34490 cve-icon cve-icon
http://secunia.com/advisories/34706 cve-icon cve-icon
http://secunia.com/advisories/34790 cve-icon cve-icon
http://security.gentoo.org/glsa/glsa-200904-17.xml cve-icon cve-icon
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1 cve-icon cve-icon
http://www.adobe.com/support/security/bulletins/apsb09-04.html cve-icon cve-icon
http://www.ivizsecurity.com/security-advisory-iviz-sr-09001.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2009-0376.html cve-icon cve-icon
http://www.securityfocus.com/bid/34229 cve-icon cve-icon
http://www.securitytracker.com/id?1021892 cve-icon cve-icon
http://www.vupen.com/english/advisories/2009/1019 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2009-1062 cve-icon
https://www.cve.org/CVERecord?id=CVE-2009-1062 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-03-25T01:00:00

Updated: 2024-08-07T04:57:17.666Z

Reserved: 2009-03-24T00:00:00

Link: CVE-2009-1062

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2009-03-25T01:30:00.593

Modified: 2018-10-30T16:25:42.810

Link: CVE-2009-1062

cve-icon Redhat

Severity : Critical

Publid Date: 2009-02-19T00:00:00Z

Links: CVE-2009-1062 - Bugzilla